Описание
ELSA-2026-50255: Unbreakable Enterprise kernel security update: Copy Fail (IMPORTANT)
[5.4.17-2136.354.4.2]
- crypto: algif_aead - Fix minimum RX size check for decryption (Herbert Xu) [Orabug: 39292250]
- crypto: af_alg - Fix page reassignment overflow in af_alg_pull_tsgl (Herbert Xu) [Orabug: 39292250]
- crypto: authencesn - Fix src offset when decrypting in-place (Herbert Xu) [Orabug: 39292250]
- crypto: authencesn - Do not place hiseq at end of dst for out-of-place decryption (Herbert Xu) [Orabug: 39292250]
- crypto: authenc - use memcpy_sglist() instead of null skcipher (Eric Biggers) [Orabug: 39292250]
- crypto: algif_aead - snapshot IV for async AEAD requests (Douya Le) [Orabug: 39292250]
- crypto: algif_aead - Revert to operating out-of-place (Herbert Xu) [Orabug: 39292250]
- crypto: algif_aead - use memcpy_sglist() instead of null skcipher (Eric Biggers) [Orabug: 39292250] {CVE-2026-31431}
- crypto: scatterwalk - Backport memcpy_sglist() (Eric Biggers) [Orabug: 39292250]
- crypto: doc - fix kernel-doc notation in chacha.c and af_alg.c (Randy Dunlap) [Orabug: 39292250]
- x86/CPU: Fix FPDSS on Zen1 (Siddh Raman Pant) [Orabug: 39292236]
Обновленные пакеты
Oracle Linux 8
Oracle Linux aarch64
kernel-uek
5.4.17-2136.354.4.2.el8uek
kernel-uek-debug
5.4.17-2136.354.4.2.el8uek
kernel-uek-debug-devel
5.4.17-2136.354.4.2.el8uek
kernel-uek-devel
5.4.17-2136.354.4.2.el8uek
kernel-uek-doc
5.4.17-2136.354.4.2.el8uek
Oracle Linux x86_64
kernel-uek
5.4.17-2136.354.4.2.el8uek
kernel-uek-container
5.4.17-2136.354.4.2.el8uek
kernel-uek-container-debug
5.4.17-2136.354.4.2.el8uek
kernel-uek-debug
5.4.17-2136.354.4.2.el8uek
kernel-uek-debug-devel
5.4.17-2136.354.4.2.el8uek
kernel-uek-devel
5.4.17-2136.354.4.2.el8uek
kernel-uek-doc
5.4.17-2136.354.4.2.el8uek
Oracle Linux 7
Oracle Linux x86_64
kernel-uek
5.4.17-2136.354.4.2.el7uek
kernel-uek-container
5.4.17-2136.354.4.2.el7uek
kernel-uek-container-debug
5.4.17-2136.354.4.2.el7uek
kernel-uek-debug
5.4.17-2136.354.4.2.el7uek
kernel-uek-debug-devel
5.4.17-2136.354.4.2.el7uek
kernel-uek-devel
5.4.17-2136.354.4.2.el7uek
kernel-uek-doc
5.4.17-2136.354.4.2.el7uek
kernel-uek-tools
5.4.17-2136.354.4.2.el7uek
Связанные CVE
Связанные уязвимости
In the Linux kernel, the following vulnerability has been resolved: crypto: algif_aead - Revert to operating out-of-place This mostly reverts commit 72548b093ee3 except for the copying of the associated data. There is no benefit in operating in-place in algif_aead since the source and destination come from different mappings. Get rid of all the complexity added for in-place operation and just copy the AD directly.
In the Linux kernel, the following vulnerability has been resolved: crypto: algif_aead - Revert to operating out-of-place This mostly reverts commit 72548b093ee3 except for the copying of the associated data. There is no benefit in operating in-place in algif_aead since the source and destination come from different mappings. Get rid of all the complexity added for in-place operation and just copy the AD directly.
In the Linux kernel, the following vulnerability has been resolved: crypto: algif_aead - Revert to operating out-of-place This mostly reverts commit 72548b093ee3 except for the copying of the associated data. There is no benefit in operating in-place in algif_aead since the source and destination come from different mappings. Get rid of all the complexity added for in-place operation and just copy the AD directly.
In the Linux kernel, the following vulnerability has been resolved: c ...